CVE-2008-4063
CVE-2008-4063
Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.2 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the layout engine and (1) a zero value of the "this" variable in the nsContentList::Item function; (2) interaction of the indic IME extension, a Hindi language selection, and the "g" character; and (3) interaction of the nsFrameList::SortByContentOrder function with a certain insufficient protection of inline frames.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00005.htmlhttps://bugzilla.mozilla.org/show_bug.cgi?id=413048https://bugzilla.mozilla.org/show_bug.cgi?id=433758https://bugzilla.mozilla.org/show_bug.cgi?id=444452http://secunia.com/advisories/31987http://secunia.com/advisories/32011http://secunia.com/advisories/32012http://secunia.com/advisories/32025http://secunia.com/advisories/32044http://secunia.com/advisories/32082http://secunia.com/advisories/32089http://secunia.com/advisories/32095